Home page logo

basics logo Security Basics mailing list archives

RE: VLAN Security
From: "Ethan" <ethan () shame mine nu>
Date: Fri, 7 Feb 2003 10:58:33 -0800

Since you have a seperate management vlan, and it sounds like there is
nothing else in the vlan besides user ports, I haven't heard of any security
advantages to not using the default Vlan.  However for organizational and
easier administration it would make sense to use a different vlan for user
ports, especially if you add other user vlans in the future.


-----Original Message-----
From: Naman Latif [mailto:naman.latif () inamed com]
Sent: Thursday, February 06, 2003 11:00 AM
To: security-basics () securityfocus com
Subject: VLAN Security

We have different Cisco Catalyst switches configured for VLANS. With the
current configuration

1. All trunks have a  native VLAN, which is not used by any User.
2. Management VLAN is other than VLAN 1.

We have different VLANs in place, however these are only used for
different Servers ,And all Users are only members of VLAN-1

Does it make sense to have all the user ports migrated to a Different
VLAN (other than VLAN 1) ?
Is there a security advantage in this ?

Regards \\ Naman

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]